Loading...

XML

Word

Printable

Type: Component Upgrade
Resolution: Done-Errata
Priority: Major
Fix Version/s: 7.4.14.CR1, 7.4.14.GA
Affects Version/s: None
Component/s: Build System
Labels:
- upstream-linked

Blocked:
False
Blocked Reason:
None
Ready:
False
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.4.z.GA
Git Pull Request:
https://github.com/jbossas/wildfly-core-eap/pull/1341
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Tag: https://gitlab.cee.redhat.com/undertow-io/undertow/-/commits/2.2.28.SP1
Diff: https://gitlab.cee.redhat.com/undertow-io/undertow/-/compare/2.2.26.SP1...2.2.28.SP1
Hash: a9c1f659ce40c444b64ef2404f96f8ffdc63555d

blocks

RHPAM-4816 [Major Incident] CVE-2023-44487 undertow: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) [rhpam-7]

Closed

incorporates

JBEAP-25455 [GSS](7.4.z) UNDERTOW-2296 - Wrong type in INCLUDE_MAPPING request attribute

Closed

JBEAP-25735 [GSS](7.4.z) UNDERTOW-2313 - NPE occurs in session invalidation if a session creation attempt hits UNDERTOW-1971

Closed

JBEAP-25824 [GSS](7.4.z) UNDERTOW-2305 - Messaging clients are not load-balanced using Undertow loadbalancer

Closed

JBEAP-25833 (7.4.z) UNDERTOW-2316 - Unify InMemorySessionManager getSession() method behavior with DistributableSessionManager

Closed

is cloned by

WFCORE-6555 CVE-2023-3223 Upgrade Undertow to 2.3.9.Final

Resolved

WFCORE-6564 CVE-2023-44487 Upgrade Undertow to 2.3.10.Final

Resolved

is incorporated by

JBEAP-25380 (7.4.z) Upgrade WildFly Core from 15.0.30.Final-redhat-00001 to 15.0.31.Final-redhat-00001

Closed

links to

RHBA-2023:117079 Red Hat JBoss Enterprise Application Platform 7.4.14 Update

RHSA-2023:117080 Red Hat JBoss Enterprise Application Platform 7.4.14 Update

RHSA-2023:117081 Red Hat JBoss Enterprise Application Platform 7.4.14 Security update

RHSA-2023:117082 Red Hat JBoss Enterprise Application Platform 7.4.14 Security update

RHSA-2023:121976 Red Hat JBoss Enterprise Application Platform 7.4 security update

RHSA-2023:121977 Red Hat JBoss Enterprise Application Platform 7.4 security update

RHSA-2023:121982 Red Hat JBoss EAP 7.4.13 XP 4.0.0.GA security release

(2 is cloned by, 1 is incorporated by, 7 links to)

Assignee:: Éttore Leandro Tognoli

Reporter:: Ilia Vassilev

Votes:: 0 Vote for this issue

Watchers:: 11 Start watching this issue

Created:: 2023/08/23 1:29 AM

Updated:: 2023/12/04 6:02 PM

Resolved:: 2023/12/04 5:56 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates